Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
608
Views
0
Helpful
3
Replies

SG200-08 VLAN Set Up

Burbank9
Level 1
Level 1

‎03-02-2024 07:56 AM

Network equipment: Edgerouter and SG200-08 L2 switch.

The IP assignment, VLANs logic and firewall set up are done by the Edgerouter.

I am trying to assign different ports on SG200 to the 2 VLANs (VLAN_10 and VLAN_20). See the following pics for the membership set up. For some strange reasons, the ports (G2-G5) assigned to VLAN_20 are working but not the ports (G6,G7) assigned to VLAN_10. Would really appreciate any insights. Thanks in advance

Labels:
0 Helpful
3 Replies 3

Burbank9
Level 1
Level 1

‎03-02-2024 07:58 AM

See attached pics for the SG200 set up.

Preview file
7682 KB
Preview file
8709 KB
Preview file
15363 KB
0 Helpful

Ruben Cocheno
Spotlight
Spotlight

‎03-02-2024 09:23 AM

@Burbank9 

Try to remove Membership from VLAN 10 on those ports assigned to G6, and G7. Also i suspect the routing is done at the Edge Router, so you must have a trunk interface with both VLANs tagged ideally from that switch to the Edge Router, unless you have a dedicated interface on the Edge Router attached to each VLAN on the switch, and in this case you can either use trunk on access mode.

Each VLAN is configured with a unique VLAN ID (VID) with a value from 1 to 4094. A port on a device in a bridged network is a member of a VLAN if it can send data to and receive data from the VLAN. A port is an untagged member of a VLAN if all packets destined for that port into the VLAN have no VLAN tag. A port is a tagged member of a VLAN if all packets destined for that port into the VLAN have a VLAN tag. A port can be a member of only one untagged VLAN but can be a member of multiple tagged VLANs. A port in VLAN Access mode can be part of only one VLAN. If it is in General or Trunk mode, the port can be part of one or more VLANs. VLANs address security and scalability issues. Traffic from a VLAN stays within the VLAN, and terminates at devices in the VLAN. It also eases network configuration by logically connecting devices without physically relocating those devices.

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/
0 Helpful

Burbank9
Level 1
Level 1
In response to Ruben Cocheno

‎03-03-2024 01:24 AM

Yes, routing is at the Edge Router (ER) level and there is a trunk interface between ER and the switch. 

Port G1 in the switch is the trunk link to ER. 

For VLAN 10 set up, I believe port G1 should be a Member and Tagged (of VLAN 10). Port G6 and G7 are also Member and Tagged (of VLAN 10). Other ports (G2 to G5) are not members of VLAN 10. In this case ports G6 and G7 are set up to receive tagged information from ER and vice versa.

Similarly for VLAN 20, port G1 is also a Member and Tagged (of VLAN 20). Port G2 to G5 are also Member and Tagged (of VLAN 20). Other ports (G6 and G7) are not members of VLAN 20. 

This is not working and I am wondering why. Thanks.

0 Helpful
Customers Also Viewed These Support Documents